Bangladesh Bank hit by $1 Billion cyber heist

Four requests to transfer a total of about $81 million to the Philippines went through, but a fifth, for $20 million, to a Sri Lankan non-profit organisation got held up because the hackers misspelled the name of the NGO.
At the same time the unusually high number of payment instructions and the transfer requests to private entities ... made the Fed suspicious, which also alerted the Bangladeshis ...  The transactions that got stopped totalled between $850 million and $870 million
Story here & here.

Update 24-Apr-2016:
The bank's security was in a pitiful condition!
Bangladesh's central bank was vulnerable to hackers because it did not have a firewall and used second-hand, $10 switches to network computers connected to the SWIFT

Update 27-Apr-2016:
A very sophisticated attack, which makes sense knowing the attackers targetted almost $1B from this one bank alone, and maybe others.
That apparently allowed the attackers to delete outgoing transfer requests and intercept incoming requests, as well as change recorded account balances – effectively hiding the heist from officials.
The malware even interfered with a printer to ensure that paper copies of transfer requests didn’t give the attack away.

Update 13-May-2016:
Another bank hit, by the same malware

Update 27-May-2016:
More banks are investigating a potential breach. Ecuador Bank become the third victim !

Update 28-May-2016:
Is North Korea responsible?

An interesting article with all the known facts from the Bangladesh hack.

Update 29-Jun-2016:
Ukrainian Bank loses 10 M, to a swift attack.

Update 11-Nov-2016:
$15M recovered by the Bangladesh Bank, thanks to the courts.

Update 07-Apr-2017:
Lazarus group exposed, with links to N Korea

No comments: